Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227051 | 4.3 | 警告 | Made to Order Software | - | Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-5584 | 2012-12-28 15:49 | 2012-11-14 | Show | GitHub Exploit DB Packet Storm |
| 227052 | 6.8 | 警告 | Sensio Labs | - | Symfony における任意のサービスにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6432 | 2012-12-28 15:20 | 2012-12-20 | Show | GitHub Exploit DB Packet Storm |
| 227053 | 6.4 | 警告 | Sensio Labs | - | Symfony における URI の制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6431 | 2012-12-28 15:18 | 2012-12-20 | Show | GitHub Exploit DB Packet Storm |
| 227054 | 4.3 | 警告 | Sebastian Heinlein Canonical |
- | Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0962 | 2012-12-28 15:03 | 2012-12-17 | Show | GitHub Exploit DB Packet Storm |
| 227055 | 2.1 | 注意 | Debian | - | Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-0961 | 2012-12-28 14:59 | 2012-12-12 | Show | GitHub Exploit DB Packet Storm |
| 227056 | 4.3 | 警告 | PS Project Management Team | - | Firefox 用 Unity integration 拡張機能における同一生成元ポリシーを回避される脆弱性 |
CWE-DesignError
|
CVE-2012-0958 | 2012-12-28 14:58 | 2012-10-23 | Show | GitHub Exploit DB Packet Storm |
| 227057 | - | - | Ruby on Rails project | - | ** 削除 ** Ruby on Rails 用 Authlogic gem における SQL インジェクションの脆弱性 | - | CVE-2012-5664 | 2012-12-28 14:22 | 2012-12-26 | Show | GitHub Exploit DB Packet Storm |
| 227058 | 4.3 | 警告 | Opera Software ASA | - | Android 版 Opera Mini ウェブブラウザおよび Opera Mobile ウェブブラウザにおいて任意のスクリプトが実行される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-5180 | 2012-12-28 14:17 | 2012-12-20 | Show | GitHub Exploit DB Packet Storm |
| 227059 | 2.6 | 注意 | WordPress.org | - | WordPress における有効なセッション識別子を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-5868 | 2012-12-28 11:58 | 2012-12-27 | Show | GitHub Exploit DB Packet Storm |
| 227060 | 4.9 | 警告 | Linux | - | Linux Kernel と一緒に配布される hypervkvpd におけるサービス運用妨害 (Daemon Exit) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-5532 | 2012-12-28 11:44 | 2012-12-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195581 | 6.1 |
MEDIUM
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality… |
CWE-79
Cross-site Scripting |
CVE-2021-20493 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195582 | 7.5 |
HIGH
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339. |
CWE-521
Weak Password Requirements |
CVE-2021-20470 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195583 | 7.5 |
HIGH
Network |
ibm | qradar_security_information_and_event_manager | IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196074. |
CWE-326
Inadequate Encryption Strength |
CVE-2021-20400 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195584 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R… |
CWE-20
Improper Input Validation |
CVE-2021-20611 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195585 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120S… |
NVD-CWE-Other
|
CVE-2021-20610 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195586 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R … |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20609 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195587 | 7.5 |
HIGH
Network |
mitsubishielectric |
gt_softgot2000 got_simple_gs2110-wtbd_firmware got_simple_gs2107-wtbd_firmware got2000_gt2104-rtbd_firmware got2000_gt2103-pmbd_firmware got2000_gt2103-pmbds_firmware got2000_gt2103… |
Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versio… |
CWE-20
Improper Input Validation |
CVE-2021-20601 | 2024-11-21 14:46 | 2021-11-24 | Show | GitHub Exploit DB Packet Storm |
| 195588 | 5.3 |
MEDIUM
Network |
ibm | planning_analytics | IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain … |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2021-20526 | 2024-11-21 14:46 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 195589 | 7.5 |
HIGH
Network |
mitsubishielectric |
r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware |
Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and M… | - | CVE-2021-20599 | 2024-11-21 14:46 | 2021-10-15 | Show | GitHub Exploit DB Packet Storm |
| 195590 | 5.9 |
MEDIUM
Network |
mitsubishielectric | r12ccpu-v_firmware | Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-o… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20600 | 2024-11-21 14:46 | 2021-10-9 | Show | GitHub Exploit DB Packet Storm |